CVSS 3.1 Score 8.2 of 10 (high)


Published Oct 17, 2023
Updated: Nov 1, 2023


CVE-2023-22099 is a vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization. This vulnerability affects versions prior to 7.0.12 and can be easily exploited by a high privileged attacker with logon access to compromise Oracle VM VirtualBox. While the vulnerability is specific to Oracle VM VirtualBox, it has the potential to impact other products as well. Successful attacks could lead to a takeover of Oracle VM VirtualBox, causing confidentiality, integrity, and availability impacts. Organizations using the 7.0.x platform should take immediate action to remediate this vulnerability.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-22099 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options